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(54) Mobile station providing user-defined private zone for restricting access to user application 
data 



(57) A mobile station (1 0) is constructed to include 
a user interface (16), a memory (14) for storing data 
(15A-15F) entered by the user, through the user inter- 
face, under the control of a plurality of different applica- 
tions, and a controller (12) that is coupled to the memory 
and to the user interface. The controller operates under 
the control of a stored program for interacting with the 
user through the user interface for selectively restricting 



access to the stored data associated with at least one 
of the applications. The controller is responsive to a re- 
quest to access restricted data for displaying a message 
that the requested data is restricted from access, and 
then enabling access to the data only upon an occur- 
rence of the user entering interacting with the user in- 
terface, such as by entering a predetermined code with 
the user interface. 
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Description 

FIELD OF THE INVENTION: 

[0001] This invention relates generally to mobile sta- 
tions operable with a wireless network and, in particular, 
to mobile stations having a user interface that enables 
a user to store user-defined and user-specific data. 

BACKGROUND OF THE INVENTION: 

[0002] Modern wireless mobile stations, such as radi- 
otelephones and personal communicators, have or are 
expected to have enhanced user interface features that 
enable a user to store and maintain a calendar and or- 
ganizer; an address directory with telephone numbers 
and other contact information, as well as personal notes 
regarding persons or organizations listed in the directo- 
ry, a diary, email facilities, short message service (SMS) 
facilities, as well as certain settings (e.g., language se- 
lection and profiles.) As can be appreciated, some or all 
of this information may be of a personal and/or confi- 
dential nature, such that the user would not wish others 
to have access to the stored information. 
[0003] While a mobile station is typically the property 
of one individual, under some circumstances the user 
may lend the mobile station to a related or an unrelated 
person who wishes to make a call. Furthermore, a user 
who is traveling or who is attending a meeting may in- 
advertently leave his or her mobile station unattended 
for some period of time. During such periods another 
person could access the personal and/or confidential in- 
formation stored in the mobile station, to the detriment 
of the owner of the mobile station. 
[0004] It is known to employ a code to lock and unlock 
certain features of the mobile station. For example, an 
ability to make or originate certain types of calls, such 
as long distance calls, can be selectively enabled and 
disabled by entering a predetermined lock/unlock code 
or a personal identification number (PIN) code. The mo- 
bile station may also be locked as an entity, for example 
as in a GSM phone prior to PIN entry, or with a "phone 
lock" feature. 

[0005] It is also known to provide, in a handheld per- 
sonal organizertype device, a capability to define as pri- 
vate individual user records, but not entire applications. 
Furthermore, in this prior art approach the user may 
have no indication that a requested record has been 
marked as private (e.g., blank spaces may simply ap- 
pear in place of the requested private record.) The user 
may need to go to a security menu in order to request 
that all private records be shown. 

OBJECTS AND ADVANTAGES OF THE INVENTION: 

[0006] It is a first object and advantage of this inven- 
tion to provide an improved mobile station that enables 
a user to restrict access to certain stored application- 



related information. 

[0007] It is a further object and advantage of this in- 
vention to provide a mobile station having a user inter- 
face that enables a user to define and establish a n pri- 
5 vate zone" for user data, such that data withi n the private 
zone is not accessible without knowledge of a predeter- 
mined code. 

SUMMARY OF THE INVENTION 

10 

[0008] The foregoing and other problems are over- 
come and the objects are realized by methods and ap- 
paratus in accordance with embodiments of this inven- 
tion. 

is [0009] More specifically, a method is provided for use 
with a mobile station of a wireless communications sys- 
tem, the method for selectively restricting access to data 
stored in a memory of the mobile station and including 
steps of (a) interacting with a user interface of the mobile 
20 station for restricting access to the data; (b) in response 
to a request to access the data, displaying a message 
that the requested data is restricted from access; and 
(c) providing access to the data only upon an occurrence 
of a user interacting with the user interface, such as by 
25 entering a predetermined code with the user interface. 
The step of displaying a message preferably includes a 
step of displaying a prompt for the user to enter the pre- 
determined code. 

[001 0] If the user enters an incorrect code , or no code 
30 at all, the method executes a further step of displaying 
a prompt for the user to enter the predetermined code. 
In another embodiment, if the user enters an incorrect 
code, or no code at all, the method executes a further 
step of exiting a current level of a multi-level hierarchy 
35 of menu display screens, and entering a next higher lev- 
el of the multi-level hierarchy of menu display screens. 
This can occur on the first entry of an incorrect or no 
code, or after some predetermined number of retries. 
Error messages can be displayed to indicate to the user 
40 that an incorrect code has been entered. The method 
may execute the further step of exiting the current level 
of a multi-level hierarchy of menu display screens, and 
entering the next higher level of the multi-level hierarchy 
of menu display screens, or entering an Idle state, upon 
45 the user entering a "back" or similar command. 

[0011] A mobile station that is constructed and oper- 
ated in accordance with the teachings of this invention 
includes a user interface, a memory for storing data en- 
tered by the user, through the user interface, under the 
50 control of a plurality of different applications, and a con- 
troller that is coupled to the memory and to the user in- 
terface. The controller operates under the control of a 
stored program for interacting with the user through the 
user interface for selectively restricting access to the 
55 stored data associated with at least one of the applica- 
tions. The controller is responsive to a request to access 
restricted data for displaying a message that the re- 
quested data is restricted from access, and then ena- 
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bling access to the data only upon an occurrence of the 
user interacting with the user interface, such as by en- 
tering the predetermined code with the user interface. 

BRIEF DESCRIPTION OF THE DRAWINGS 

[0012] The above set forth and other features of the 
invention are made more apparent in the ensuing De- 
tailed Description of the Invention when read in conjunc- 
tion with the attached Drawings, wherein: 

Fig. 1 is block diagram of a mobile terminal in ac- 
cordance with an embodiment of this invention; and 
Fig. 2 is a logic flow diagram of a presently preferred 
embodiment of a method for inhibiting access to 
stored data in the mobile station of Fig. 1 . 

DETAILED DESCRIPTION OF THE INVENTION 

[0013] Fig. 1 depicts a simplified block diagram of a 
mobile station 10 having a mobile station controller 12, 
typically a suitably programmed microprocessor, a 
memory 14 for storing data, including operating pro- 
grams for the controller 12, data received from a wire- 
less network (not shown), such as short message serv- 
ice (SMS) data, and data entered through a user inter- 
face 16 by a user. The user interface 16 typically in- 
cludes a display screen 1 6A and a keyboard of keypad 
16B, although in other embodiments voice synthesis 
and voice recognition functions could replace or be used 
in conjunction with the display 1 6A and the keypad 1 6B, 
respectively. An electronic pen or stylus could be used 
as well as a data entry device. The mobile station 10 
also includes a transceiver 18 and antenna 20 for trans- 
mitting to and receiving from various frequency chan- 
nels. The mobile station 1 0 may be a radiotelephone, a 
cellular telephone, a personal communicator, an elec- 
tronics card or module that is fixably or removably in- 
stalled within another system, such as a PC, etc. In this 
latter embodiment the user interface 1 6 may be the dis- 
play and keyboard of the PC. The mobile station 10 
could as well be coupled to a PC through a cable or a 
wireless (e.g., IR) link, and could thus employ the dis- 
play and/or keyboard of the PC as an adjunct to the dis- 
play 16A and the keypad 16B. 

[0014] In general, and whether or not the user inter- 
face 16 is implemented in the mobile station 10 or in 
some external device, such as a PC, it is preferred to 
display on display 16A a hierarchy of menu display 
screens and to use the keypad 16B or the like to navi- 
gate through the menu display screens in order to reach 
a level wherein data can be entered. As but one exam- 
ple, assume that a highest level display screen enables 
a user to select an item designated "Personal Data". Af- 
ter selecting "Personal Data", a next lower-level display 
screen offers a choice between "Phone Book", or "Ap- 
pointments", or "Calendar", or "SMS" applications. If 
"Phone Book" is selected, then a next lower level display 



screen might enable the user to select "View", "Delete", 
"Add", "Modify", etc., whereas if "SMS" were selected a 
next lower level display screen might prompt the user to 
select one of "SMS Inbox" or "SMS Outbox", with further 
5 choices and selections being made thereafter. 

[0015] The memory 1 4 is assumed to include read on- 
ly memory (ROM) 1 4A, read/write random access mem- 
ory (RAM) 14B, and non-volatile read/write memory 
14C. The non-volatile memory is preferred for use in 
10 storing data entered by the user (as well as certain data 
entered by the wireless system, network operator, or 
dealer) : that is expected may be changed from time to 
time. Of most interest to the teachings of this invention 
is the user-entered data that is stored by various appli- 
es cations (e.g., such as the "Phone Book", "Appoint- 
ments", "Calendar, or "SMS" applications referred to 
above), and which the user desires to maintain private 
or confidential. These specific applications, as well as 
other applications, and more specifically the associated 
20 portions of non-volatile memory 1 4C , may include a cal- 
endar 15A, an appointment reminder 15B, a telephone 
book (possibly including notes, addresses and other 
contact information) 15C, a diary 15D, email messages 
15E (both those sent and received), and short message 
25 service (SMS) messages 15F (both those sent and re- 
ceived.) As may be appreciated, the data stored in one 
or more of these memory portions may be of a private 
or confidential nature. 

[0016] Referring now to Fig. 2, a description will now 

30 be made of the operation of the controller 12 in imple- 
menting a presently preferred embodiment of a method 
in accordance with the teachings of this invention. 
[0017] At Step 30 the user interacts with a "Private 
Zone" application that displays, for example, a list of ap- 

35 plications that potentially contain data that a user may 
desire to treat in a private or confidential manner. These 
applications could be those mentioned above, and could 
include "Phone Book", "Appointments", "Calendar", 
"SMS Inbox", "SMS Outbox", "Email Inbox", "Email Out- 

40 box", etc. The current "Private Zone" status of each of 
these applications may also be displayed (e.g., private 
zone "enabled" or "disabled", or by the use of some suit- 
able icon or icons.) By selecting a particular entry using, 
for example , up-down and/or left-right arrow keys on the 

^5 keypad 1 6B, and then depressing another keypad key, 
the current status is toggled (e.g., "Email Inbox" private 
zone "enabled" changes to "Email Inbox" private zone 
"disabled", and vice versa.) A "tick box" type of selection 
could be used as well, such as: 

50 

Phonebook 

_X_ Calendar 

SMS 

55 _X_ SMS Inbox 

SMS Outbox 
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wherein the Calendar application and the SMS Inbox 
sub-application have been selected for being placed in 
the user's Private Zone. 

[0018] See, for example, in Fig. 1 where the exempla- 
ry SMS 15F memory region is differentiated into SMS 
Inbox and SMS Outbox subregions, each having an as- 
sociated Private Zone flag 17A, 17B for indicating 
whether the Private Zone is Enabled (E) or Disabled (D) 
forthe associated stored information. In this manner the 
user is enabled to selectively enable and disable (i.e., 
turn on and turn off) the private zone feature for the 
stored data associated with individual ones of applica- 
tions and sub-appfications. 

[0019] It is desirable to first require the user to enter 
an authorization code, such as a PIN code or any suit- 
able private access code or password code (which could 
be numbers, or text characters, or a combination of text 
and numbers), before giving the user the ability to enter 
the Private Zone application, and to selectively enable 
and disable the Private Zone feature for different appli- 
cations. 

[0020] In another embodiment the user is only permit- 
ted to enable (turn on) the Private Zone lock for individ- 
ual ones of the displayed applications, with the Private 
Zone lock being subsequently removed or released only 
after the user has selected the particular locked appli- 
cation for access, as will be described below. 
[0021] At Step 32, and at some future time, it is as- 
sumed that the same or a different user interacts with 
the user interface 1 6 to select one of the applications of 
interest. At Step 33, if an application is selected (e.g., 
SMS Outbox) for which the Private Zone is not enabled, 
then the user has access to the application , and the data 
stored within the application, in a normal manner (Step 
35). However, if an application is selected (e.g., SMS 
Inbox) for which the Private Zone was previously ena- 
bled, then the user is restricted or barred from access 
to the application, and the data stored within the appli- 
cation. At Step 34 the controller 12 displays for some 
period of time a suitable message, such as "Requested 
Application is Restricted", and then may automatically 
move one user interface level higher in the hierarchy of 
display screens. That is, the controller 12 may cause the 
user interface to exit a current level of the multi-level 
hierarchy of menu display screens, and to enter a next 
higher level of the multi-level hierarchy of menu display 
screens. Alternatively, the controller 12 can display a 
message to request the user to enter the Private Zone 
code, either after or in lieu of displaying the restricted 
message to the user. 

[0022] At Step 34A the user interface 1 6A optionally 
displays a selectable option, such as "Release". If the 
user selects Release while it is displayed then the user 
interface prompts the user at Step 36 to enter a code, 
which may be referred to as a "Private Lock Code". This 
could be the user's normal PIN number, or it could be 
another code defined just for the Private Zone applica- 
tion (any combination of numbers, letters, number and 



letters, numbers/letters and special characters (e.g., 
5AK4?>#67!). Alternatively, it may be assumed that the 
user wishes to enter the menu, so the password is re- 
quested immediately, without displaying the selectable 

5 option (e.g., "Release"). At Step 38 it is determined if 
the user enters the correct Private (Un)Lock Code. If 
yes, then the data stored for the requested application 
is made available to the user, and the Private Zone lock 
is unlocked (Step 40). However, if the user enters an 

10 incorrect Private Zone (Un)Lock code, or no code at all, 
then at Step 42 the controller 12 may display for some 
period of time a suitable errormessage, such as "Private 
Zone Code is Incorrect". The user also may be prompted 
to enter the correct code, however access is denied until 

1 $ the correct code is entered. The user may also enter 
"back", or may enter "exit" to terminate the code entry. 
[0023] In accordance with the example given thus far, 
if "SMS Inbox" is protected by the Private Zone feature, 
and if the user does not enter the correct unlock or en- 

20 able code, or enters no code at all, then controller 12 
can deny access to the requested private data and dis- 
play a suitable error message and/or prompt forthe cor- 
rect code or password. In other embodiments of this in- 
vention the controller 12 could automatically move one 

25 user interface level higher in the hierarchy of menu dis- 
play screens, thereby denying the user access to the 
data of the previously selected and locked application 
(e.g., SMS Inbox). Alternately, the usermay enter "back" 
or "ex it" or "quit", and the controllers in response caus- 
ae es the user interface to automatically move up one level 
to, for example, the menu display screen that displays 
the list of available options: e.g., "Phone Book", "Ap- 
pointments", "Calendar", "SMS", under the next higher 
level display screen of "Personal Data". Inthiscase, and 

35 if the user presses "back" or "exit" or"quif , then the con- 
troller 12 backsteps one level, or else goes to the Idle 
state, depending on the key that was depressed. 
[0024] The release of the Private Zone lock can be 
permanent (i.e., until subsequently re-established by 

40 the user), or it may be on a one time basis, thereby en- 
abling access to the data only for this particular inquiry. 
For example, after exiting the unlocked SMS Inbox ap- 
plication the Private Zone lock is re-established so that 
a subsequent selection of this application will again find 

45 that access to the application's data is restricted. The 
user may also permanently remove the SMS Inbox from 
the "Private Zone" to enable free and unfettered access 
to the SMS Inbox. 

[0025] Those skilled in the art will appreciate that any 
50 number of user interface interactions can be designed, 
from the simple to the complex, for enabling the user to 
lock and then subsequently unlock certain applications 
that have the potential to store information that the user 
wishes to treat as private or confidential, and that the 
55 user does not wish others to view. As such, the particular 
user interface embodiments described above should be 
viewed as exemplary, and in no way in a limiting sense 
upon the practice of this invention. 
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[0026] For example, the mobile station may be capa- 
ble of storing a plurality of Phone Books, each of which 
could be separately locked and then released using the 
same one or different individual Private Zone lock 
codes. 

[0027] Furthermore, it is within the scope of this in- 
vention to restrict or enable access permanently with a 
code or password, as well as to temporarily overrule the 
restriction by entry of the correct code or password, 
thereby enabling the user to selectively gain access to 
a desired application or sub-application, it is also within 
the scope of this invention to selectively activate the pri- 
vate zone at the application level, for each application 
or part of an application separately as well as to acti- 
vate/deactivate the private zone for a number of appli- 
cations from one menu using, for example, the tick box 
approach discussed above. 

[0028] It is also within the scope of this invention to 
remove ihe private zone through any desired applica- 
tion Foi example, when entering a restricted application 
the user can at the same time remove the restriction 
from all applications. 

[0029] A "lock all" feature may be provided as well, 
whcrcm all application menus are restricted from entry, 
dl1 v^hore the user is still enabled to make and receive 
pt-ono calls. 

(0030] The use of the private zone feature enables the 
irioni fiors of applications to still be displayed normally, 
o -j "SMS" "Calendar", etc., even when the application 
h rt s been assigned to the private zone. Only when the 
user attempts to access the application is he informed 
thrit the application is in the private zone, either by a 
message expressly stating so, or impliedly by request- 
ing the password or code. After exiting the requested 
application the private zone restriction is again applied, 
unless it was expressly removed by the user. 
[0031 ] Thus, while the invention has been particularly 
shown and described with respect to preferred embod- 
iments thereof, it will be understood by those skilled in 
the art that changes in form and details may be made 
therein without departing from the scope and spirit of the 
invention. 



Claims 

1. A method for selectively restricting access to data 
stored in a memory of a mobile station, comprising 
steps of: 

interacting with a user interface of the mobile 
station for restricting access to the data; 



currence of a user interaction with the user in- 
terface to release the restriction. 

2. A method as in claim 1 , wherein the step of display- 
5 ing a message includes a step of displaying a 

prompt for the user to enter a predetermined code. 

3. A method as in claim 2, wherein if the user enters 
an incorrect code : or no code at all, the method 

10 comprises a further step of prompting the user 
again to enter the predetermined code. 

4. A method as in claim 2, wherein if the user enters 
an incorrect code : or no code at all, the method 

'5 comprises a further step of exiting a current level of 
a multi-level hierarchy of menu display screens, and 
entering a next higher level of the multi-level hier- 
archy of menu display screens. 

20 5. a method as in claim 1 , wherein the user restricts 
or enables access permanently with a predeter- 
mined code or password. 

6. A method as in claim 1 , wherein the user temporar- 
25 ||y overrules a restriction by entry of a correct code 

or password. 

7. A method as in claim 1 , wherein the user activates 
the restriction at an application level, for each ap- 

30 plication or part of an application separately. 

8. A method as in claim 1 , wherein the user activates 
or deactivates the restriction for a number of appli- 
cations from one menu. 

35 

9. A method as in claim 1 , wherein the user, when en- 
tering a restricted application, at the same time re- 
moves the restriction from ail restricted applica- 
tions. 

40 

10. A mobile station, comprising: 

a user interface; 

45 a memory for storing data entered by the user 

through said user interface under the control of 
a plurality of different applications; and 

a controller that is coupled to said memory and 
to said user interface and operating under the 
control of a stored program for interacting with 
the user through said user interface for selec- 
tively restricting access to the stored data as- 
sociated with at least one of said applications, 
said controller being responsive to a request to 
access restricted data for displaying a message 
that the requested data is restricted from ac- 
cess, said controller enabling access to the da- 



in response to a request to access the data, dis- 
playing a message that the requested data is 55 
restricted from access; and 

providing access to the data only upon an oc- 



35 

9. 
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ta only upon an occurrence of the user interact- 
ing with said user interface. 

11. A mobile station as in claim 10, wherein said con- 
troller further displays a prompt for the user to enter 5 
a predetermined code. 

12. A mobile station as in claim 11 , wherein if the user 
enters an incorrect code, or no code at all, said con- 
troller operates so as to prompt the user again to 10 
enter the predetermined code. 

13. A mobile station as in claim 11 , wherein if the user 
enters an incorrect code, or no code at all, said con- 
troller operates so as to quit the display of a current 15 
level of a multi-level hierarchy of menu display 
screens, and to display instead a next higher level 

of the multi-level hierarchy of menu display screens. 

20 
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(57) A mobile station (1 0) is constructed to include 
n user interface (16). a memory (14) for storing data 
(ISA 15F) entered by the user, through the user inter- 
ne under the control of a plurality of different applica- 
tions nnd a controller (12) that is coupled to the memory 
nrd id the user interface. The controller operates under 
tho control of a stored program tor interacting with the 
user through the user interlace tor selectively restricting 



access to the stored data associated with at least one 
of the applications. The controller is responsive to a re- 
quest to access restricted data for displaying a message 
that the requested data is restricted from access, and 
then enabling access to the data only upon an occur- 
rence of the user entering interacting with the user in- 
terface, such as by entering a predetermined code with 
the user interface. 
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